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response to an invitation under Article 14 are referred to in this report as "originally filed" and are not annexed to 
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Claims, No.: 

1 -27 as originally filed 

Drawings, No.: 
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□ the drawings, sheets: 
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considered to go beyond the disclosure as filed (Rule 70.2(c)): 

4. Additional observations, if necessary: 

ill. Non-establishment of opinion with regard to novelty, inventive step and industrial applicability 

The questions whether the claimed invention appears to be novel, to involve an inventive step (to be non-obvious), 
or to be Industrially applicable have not been examined in respect of: 

□ the entire international application. 
H claims Nos. 22-27. 

because: 
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K the said international application, or the said clainns Nos. 22-27 relate to the following subject matter which 
does not require an international preliminary examination (specity): 

see separate sheet 

□ the description, claims or drawings {indicate particular elements belov^/) or said claims Nos. are so unclear 
that no meaningful opinion could be formed (specify): 

□ the claims, or said claims Nos. are so inadequately supported by the description that no meaningful opinion 
could be formed. 

□ no international search report has been established for the said claims Nos. . 
IV. Lack of unity of invention 

1 . In response to the invitation to restrict or pay additional fees the applicant has: 
H restricted the claims. 

□ paid additional fees. 

□ paid additional fees under protest. 

□ neither restricted nor paid additional fees. 

2. □ This Authority found that the requirement of unity of invention is not complied and chose, according to Rule 

68.1 , not to invite the applicant to restrict or pay additional fees. 

3. This Authority considers that the requirement of unity of invention in accordance with Rules 13.1, 13.2 and 13.3 is 
ta complied with. 

□ not complied with for the following reasons: 

4. Consequently, the following parts of the international application were the subject of international preliminary 
examination in establishing this report: 

□ all parts. 

H the parts relating to claims Nos. 1-21 . 
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V. Reasoned statement under Article 35(2) with regard to novelty, inventive step or industrial 
applicability; citations and explanations supporting such statement 

1. Statement 



Novelty (N) 


Yes: 


Claims 


1-21 




No: 


Claims 




Inventive step (IS) 


Yes: 


Claims 


1-21 




No: 


Claims 




Industrial applicability (lA) 


Yes: 


Claims 


1-21 




No: 


Claims 





2. Citations and explanations 
see separate sheet 

VII. Certain defects in the international application 

The following defects in the fonn or contents of the international application have been noted: 
see separate sheet 
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Re Item III 

Non-establishment of opinion with regard to novelty, inventive step and 
industrial applicability 

Referring to the invitation, dated 05.09.00, on the PCT form 405, to restrict or to 
pay additional fees, the Applicant opted to restrict he claims to claims 1 to 21. 

Re Item IV 

Lack of unity of invention 

1. The application would appear to lack unity within the meaning of Rule 13.1 PCT, 
since it does not seem to relate to one invention only or to a group of inventions 
so linked as to form a single general inventive concept. 

2. In fact, the Examining Division considers that the following separate inventions are 
outstanding: 

2.1 Claims 1 to 21 relate to a method and apparatus for printing a franking mark on a 
document. 

2.2 Claim 22 relates to an exchange. 

2.3 Claims 23 to 24 relate to a printing means. 

2.4 Claims 25 to 27 relate to an information carrier. 

3. It appears that there is no new features in common between these four groups of 
claims and therefore an inventive general concept is absent, thus a lack of unity 
results. 

Re Item V 

Reasoned statement under Article 35(2) with regard to novelty, inventive step or 
industrial applicability; citations and explanations supporting such statement 

1 . Reference is made to the following documents: 

D1: US-A-5 671 146 (BISCHOFF ENNO ET AL) 23 September 1997 (1997-09- 
23) 
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2. Document D1 is considered to represent the most relevant state of the art and 
discloses a method for improving the security of postage metre machines. The 
said postage machine contains a code word stored therein, the presence of this 
code being necessary for authorized operation of the machine. 

3. However, it has been found that this code word can be predicted which is 
disadvantageous in regard to possible fraud. 

4. The solution proposed is to select the bit string from a centrally stored set of 
unique bit strings and centrally register the said bit string. 

5. Such a solution cannot be derived in an obvious manner from the reading of D1 
and the remaining documents cited in the International Search Report, integrated 
with the general knowledge of a skilled engineer. 

The subject-matter of independent claim 1 is therefore new and involves an 
inventive step (Article 33(2)(3) PCT). 

6. Industrial applicability is also given (Article 33(3) PCT). 

7. Regarding dependent claims 2 to 16 and 18, they appear to meet the 
requirements of Article 33 PCT. 

Re Item VII 

Certain defects in the international application 

1 . Contrary to the requirements of Rule 5.1 (a)(ii) PCT, the relevant background art 
disclosed in the document D1 is not mentioned in the description, nor is this 
document identified therein. 
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(57) Abstract 

A method and devices for printing a franking mark (28) on a document (22) with the aid of the following steps: a. making available 
a unique bit string; b. establishing an identification code; c. securely printing the franking mark (28) on the document (22). said franking 
mark at least comprising information relating to the bit string and the identification code; where the bit string is selected from a centrally 
stored set of unique bit strings, and the unique bit strings which are made available for use are centrally registered. 
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1 

Method and devices for printing a franking mark on a docu- 
ment. 



The present invention is related to a method for 
5 printing a franking mark on a document, comprising the 
following steps: 

a. making available a unique bit string; 

b. establishing an identification code; 

c. securely printing said franking mark on the document, 
10 said franking mark at least comprising information 

relating to the bit string and the identification 
code . 

"Franking mark" here refers, for example, to an 
electronic postage stamp, that is to say a mark printed on 

15 a postal article by a franking machine or a printer, which 
inter alia can represent a franking value for said postal 
article. In the context of the present invention, however, 
"franking mark" has a wide meaning. The concept "franking 
mark" can refer to all kinds of marks which can be placed 

20 on arbitrary documents for securing said documents. Besides 
postal articles, such documents can also be value 
documents, such as admission tickets, payment slips, etc., 
which are protected by such a mark. 

A method of the kind mentioned in the beginning is 

25 disclosed in the following two documents made public by the 
Engineering Center for United States Postal Service (USPS) : 
"Information Based Indicia Program (IBIP), Open System 
Indicium Specification" and "Information Based Indicia 
Program (IBIP), Open System Postal Security Device (PSD) 

30 Specification", both dated 23 July 1997 (draft documents) - 
With such a method, electronic postage stamps can be 
obtained and printed on postal articles. The device, for 
example a computer, with which the electronic postage stamp 
is printed is thereto provided with a Postal Security 

35 Device (PSD) , to which a unique identification code is 
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related. The electronic postage stamp comprises various 
elements, of .which a few are mentioned as "security 
critical": the identification code of the PSD, the value of 
the contents of an incremental register, the franking value 
5 of the postal article and a digital signature. The contents 
of the incremental register represent the total monetary 
value of all hitherto printed electronic postage stamps 
with the related PSD. The combination of identification 
code and the contents of the incremental register 

10 represents a unique bit string per postal article. Since 

the manner in which said unique bit string is composed must 
comply with a known rule, the value of a following unique 
bit string for a following electronic postage stamp can be 
predicted, which is disadvantageous in regard to possible 

15 fraude. 

In an article by J. Quittner in FOX Market Wire of 9 
April 1998, "Neither bugs, nor hackers, nor Pitney Bows 
will keep E-stamp from delivering your postage", available 
on the Internet on 5 May 1998, such a system, which meets 

20 these specifications and originates from the firm of E- 

Stamp, is described. The system of E-Stamp also makes use 
of a personal computer for printing a franking mark on a 
postal article directly with the aid of a regular printer 
connected to said personal computer. The personal computer 

25 is connected, via the Internet, with the United States 
Postal Service. Via the Internet, ''electronic postage 
stamps" can thus be bought at the United States Postal 
Service. The franking value of the electronic postage stamp 
is debited directly from the savings balance of the related 

30 client and stored and protected in the PSD. The PSD is a 
small box which can be inserted at the rear of a regular 
laserprinter . As soon as a user has issued a command to 
print an electronic postage stamp on a postal article, an 
electronic postage stamp is downloaded and the printer 

35 prints a two-dimensional bar code, after which the value of 
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the printed ^'postage stamp'' is debited from the total 
franking value is debited in the postal security device. 

According to the publication of J. Quittner, the 
electronic postage stamp in the system of E-Stamp comprises 
5 in any case an identification code of the user, an 

identification code of the postal security device, the 
franking value, the delivery type (for example by express 
delivery), the sender's address and the date. The 
electronic postage stamp can further also contain data 

10 related to the sending company, and room is provided for 
possible advertisements . 

The object of the invention is a further protection of 
franking marks. 

To this end, the invention is related to a method such 

15 as described above and which is characterised in that the 
bit string is selected from a centrally stored set of 
unique bit strings and that the unique bit strings which 
have been made available for use are centrally registered. 
According to the invention, each unique bit string 

20 used is thus centrally generated and registered, and said 
bit string is moreover coupled to the user who has bought 
an electronic postage stamp and/or the machine which prints 
the electronic postage stamps. It can thus not only be 
centrally detected whether the electronic postage stamps 

25 are used only once, but fraude can also be easily traced to 
the source. Further, the use of a PSD can thereby possibly 
be waived. 

The method according to the invention can, for 
example, be implemented via two different methods. 

30 ■ In a first embodiment, the unique bit string and the 
identification code, protected with the aid of a first 
message authentication code and/or protected by encoding, 
are stored, prior to step c, by a terminal on an 
information carrier with memory, step c taking place after 

35 the information carrier has been read in by a printing 
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device. Such an information carrier can, for example, be a 
chip card, on which several such unique bit strings, 
together with the identification code, can be stored. The 
identification code can, for example, be derived from" the 
5 number of the bank or ATM (Automated Counter Machine) card 
of a user, the user concerned having identified himself 
with the aid of his personal identification number (PIN) . 

It is possible that such a bank card or ATM card is a 
a multi-functional chip card, for example a Chipper® of the 

10 Netherlands KPN Telecom and Postbank, which serves inter 
alia as an electronic purse. It is further possible that 
such a bank/ATM card is used for the direct payment of the 
necessary franking value, and that the same card is 
subsequently used as information carrier for storing the 

15 said unique bit strings together with the identification 
code . 

Besides the unique bit string and the identification 
code, a terminal identification code, protected with the 
aid of the first message authentication code and/or by the 
20 encoding, is then stored on the information carrier with 
memory by the terminal. Not only can the user, in that 
case, be uniquely derived from the franking mark, but also 
the terminal whereby the user purchased his electronic 
postage stamps. 

25 After the reading of the information carrier by the 

printing device, the use of the unique bit string for 
printing a further franking mark on a further document is 
preferably rendered impossible by the printing device. 

In cases in which a user wishes to print large numbers 

30 of franking marks on documents, it can be awkward, if not 
physically impossible, to have to store such large numbers 
of unique bit strings on a chip card. The storage of large 
numbers of bit strings can be avoided in an embodiment of 
the invention in which, together with the unique bit 

35 string, the value of a counter is also maintained. The 
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counter then determines the maximum number of times that 
the unique bit string may be used for printing the franking 
mark on documents. Alternatively, the counter represents a 
balance for electronic postage stamps which may be debited 
5 to the value of zero. In that case, after the reading of 

the information carrier, it is checked whether the value of 
the counter on the information carrier lies within certain 
predefined limits. If that is the case, the value of the 
counter is adjusted after reading. If not, printing of the 

10 franking mark is blocked. 

In a second embodiment of the method according to the 
invention, use is made, when executing step c, of a 
printing device connected to a (personal) computer. In this 
PC embodiment, use is preferably made of a bank card 

15 (smartcard), which, via suitable input/output means, 
communicates with the PC and in fact takes over the 
function of a PSD, which therefore has become redundant. 

In this second embodiment of course, a counter, which 
is added to a unique bit string and determines the maximum 

20 number of times that the unique bit string for printing the 
franking mark on documents may be used, or which represents 
a monetary value that may be expended for electronic 
postage stamps, can also be used. 

The identification code can comprise a user 

25 identification code and/or a printer identification code. 
The user identification code, for example, can contain at 
least the number of the bank/ATM card of the user. The 
printer identification code is preferably coupled to a SAM 
which is used to print the franking mark, protected by a 

30 MAC (= message authentication code, or a digital signature) 
or via encoding, on the document. Said SAM can be located 
in a separate franking machine, but also in a (personal) 
computer especially arranged for this purpose. 

The franking mark will preferably be printed with a 

35 second message authentication code. A secret relationship 
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exists between said second message authentication code and 
the franking .mark, which will be known only to the 
appropriate authorities, whereby it will be impossible to 
change data from the franking mark unnoticed. 
5 Alternatively, the data can also be stored in encoded form. 
For implementing the method according to the 
invention, the set of unique bit strings is stored in a 
first central memory, used combinations of identification 
codes and unique bit strings are stored in a second central 

10 memory, franking marks printed on documents are read in, 

combinations of identification codes and unique bit strings 
present in the read-in franking marks are stored in a third 
central memory, and these are compared to the combinations 
stored in the second central memory. In this way it can be 

15 checked precisely how each unique bit string is used, and 
any fraudulent users can be traced. It can be checked, for 
example, whether each unique bit string is used only once 
and whether someone has not copied a franking mark. 
For implementing the method according to the 

20 invention, the invention is also related to a system for 
printing a franking mark on a document, comprising: 
a- means for making available a unique bit string; 

b. means for establishing an identification code; 

c. means for securely printing the franking mark on the 
25 document, said franking mark at least comprising 

information relating to the bit string and the 

identification code ; 
characterised in that the means for making available the 
unique bit string comprise a first centrally arranged 
30 memory with a set of unique bit strings, from which the 

unique bit string is selected, and that means are provided 
for centrally registering which unique bit strings are made 
available for use. 

Advantageous embodiments of such a system are apparent 
35 from the sub-conclusions 11 up to and including to 20. 
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The present invention is also related to an exchange 
provided with a first central memory having a set of unique 
bit strings, a second central memory for storing the 
combinations of identification codes and provided unique 
5 bit strings, said combinations corresponding with franking 
marks which have been printed on a document, central input 
means for inputting franking marks printed on documents, a 
third central memory for storing combinations of 
identification codes and unique bit strings present on the 

10 inputted franking marks, and processor means connected to 
the central input means and the first, second, third 
central memories for mutually comparing the data in the 
second and third central memories. 

The invention is further related to means for a device 

15 which is arranged for printing a franking mark on a 

document, said means being at least arranged for receiving 
data from an information carrier, said data at least 
comprising a unique bit string originating from a set of 
unique bit strings for compiling and making data available 

20 for the franking mark for the document in protected form, 
so that the device can print the franking mark on the 
document securely, said franking mark comprising at least 
the said data as well as an identification code. Said means 
can have the form of a separate burglar-proof module. 

25 Alternatively, however, they can also comprise several 

elements which must be implemented in the related device. 

Such means are preferably arranged to check, after 
reception of the data from the information carrier, whether 
the value of a counter on the information carrier lies 

30 within predefined limits, and, if this is the case, to 

instruct the information carrier to adjust the value of the 
counter, and, if this is not the case, to block the 
printing of the franking mark. 

The invention is also related to an information 

35 carrier provided with a memory in which at least the 



wo 00/31693 PCT/EP99/09170 

8 

following data is included: either a unique bit string 
selected from a set of unique bit strings, an 
identification code, and a message authentication code 
which is calculated on the basis of at least the unique bit 
5 string and the identification code, or the unique bit 
string and the identification code in encoded form. 

Finally, the invention relates to a computer-readable 
information carrier, which is provided with software, as 
well as a data carrier wave which, after being read in, 
10 enables the computer to execute a method for printing a 
franking mark on a document, comprising the following 
steps : 

a. the reception of a unique bit string; 

b, establishing an identification coder- 
is c. securely printing the franking mark on the document, 

said franking mark at least comprising information 
relating to the bit string and the identification 
code; 

where the bit string is received from a centrally stored 
20 set of unique bit strings - 

The present invention will be explained below with 
reference to some drawings intended only as an illustration 
of the invention and not as a limitation thereof. In 
particular, the invention has broader application than 
25 postal traffic only. 

Fig. 1 shows an embodiment of a system according to 
the invention, in which use is made of an information 
carrier in which one or more electronic postage stamps can 
be stored; 

30 Fig. 2a shows the steps of a method for providing an 

electronic postage stamp; 

Fig. 2b shows the steps of a method for providing the 
electronic postage stamp in which use is made of a counter; 
Fig, 3a shows the steps for printing an electronic 
35 postage stamp; 
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Fig. 3b shows the steps for printing an electronic 
stamp, in which use is made of a counter; 

Figs. 4a and 4b show the steps of a method according 
to the invention in which use is made of a personal 
5 computer; 

Fig. 5 shows a system according to the invention, in 
which use is made of a personal computer. 

In Fig. 1, reference number 2 refers to a terminal, 
which, for example, is set up in the wall of a post office. 

10 Said terminal 2 can communicate with an exchange 34, for 
example via the public switched telephone network (PSTN) 
46. Communication paths via other networks are of course 
possible. In this case, use can be made of the Internet. 
Communication can also take place in other ways, for 

15 example via CDROMs, floppy disks, etc. 

The terminal 2 shown in Fig. 1 comprises a processor 
4, which is coupled to display means 8 for communicating 
with a user. Said terminal 2 also comprises a memory 6, 
which is connected to said processor 4. Reference number 10 

20 refers diagrammatically to a keyboard, with which a user 
can input data and instructions for said processor 4. To 
this end, said keyboard 10 is connected to said processor 
4. Said processor 4 is further connected to a Secure 
Access/Application Module 3 (usually called "SAM"), 

25 The SAM 3 is shown in Fig. 1 within terminal 2. If so 

wished, S7^ 3 may also be present outside terminal 2. If 
desired, SAM 3 may even be mounted near or in exchange 34. 

In the embodiment shown in Fig. 1, said terminal 2 is 
provided with two input/output units 12, 14. In said 

30 input /output unit 12, a bank card or ATM card can be 

inserted. Said input/output unit 12 is thereto provided 
with one or more suitable connectors (not shown) which can 
be brought into contact with the bank card and/or ATM card 
16, as persons skilled in the art will know. With such a 
35 bank card and/or ATM card, the user can identify himself 
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and effect a PIN payment. In the event that said bank/ATM 
card contains an electronic purse, the user can herewith 
also effect payment actions, for example the payment of an 
electronic postage stamp which is to be printed on a postal 
5 article. 

Said input/output unit 14 is arranged for accepting an 
information carrier 18, which can be a chip card. To this 
end, said input/output means 14 are provided with one or 
more suitable connectors which can come into contact with 

10 the processor (not shown) on said chip card 18, as persons 
skilled in the art will know. On such an information 
carrier 18, one or more electronic postage stamps, in an 
embodiment of the invention, are stored. Such postage 
stamps are then preferably stored under protection of a 

15 message authentication code (MAC) and/or protection by 
encoding. 

In an embodiment, the ATM card/bank card is a multi- 
functional chip card, which inter alia can be used for 
payment purposes but also offers possibilities for other 

20 applications. An example of such a chip card is the 

Chipper® of the Netherlands KPN Telecom and Postbank. In 
that case, said cards 16 and 18 can be the same card and 
said input/output means 12 can be omitted. 

Alternatively, said information carrier 18 can also be 

25 a card with, for example, a magnetic strip which itself is 
not provided with processor means. Data can then be written 
to, read from and deleted from the magnetic strip by said 
terminal 2. In that case, electronic postage stamps can be 
stored under protection by encoding. It is imaginable that 

30 said terminal 2 has a supply of such magnetic strip cards 
and that a customer buys one or more of such cards. On the 
magnetic strip, one or more of such electronic postage 
stamps can then be stored- Such magnetic strip cards can be 
disposable cards. Optionally, chip cards- can also be used 

35 as disposable cards. 
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In Fig. 1, the reference number 20 refers to a 
franking machine. Said franking machine 20 is provided with 
input/output means 21 for accepting said information 
carrier 18. Said franking machine 20 is also provided with 
5 a processor 23, which, besides being connected to said 

input/output means 21, is also connected to weighing means 
25, a printer 27 and a SAM 19. 

Via said input/output means 21, said processor 23 can 
communicate with said information carrier 18. 
10 With the aid of said weighing means 25, the franking 

machine 20 can determine the weight of a postal article 22. 

With the aid of said printer 27, the franking machine 
20 can subsequently print information 29 on said postal 
article 22. 

15 Said information 29 comprises, for example, human- 

readable data 24 related to the mail-sending organisation 
(or other advertising), as well as a marking sign 25 (for 
example a bar code) enabling automatic orientation of the 
postal article in a stamping/sorting machine, and a 

20 franking mark 28, for example in the form of a two- 
dimensional bar code 28, which contains further, possibly 
encoded, information. Said franking mark 28 shall at least 
contain a unique bit string, of which the use will be 
explained further on, and an identification code. The 

25 identification code identifies the user, i.e. the person 
who purchased the electronic postage stamp, and/or the 
device with which the franking mark is printed. If the 
identification code is coupled to the printing device, this 
can, for example, be a unique code associated with said SAM 

30 19. In that case, the owner of the franking machine is 

responsible for possible fraude with the use of electronic 
postage stamps. 

As identification code for the user, the number of 
said bank card 16 can be used. The bank card number is 

35 after all a unique number which is coupled to the user. 
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while a reasonable degree of certainty can be provided that 
the user is the owner of said bank card 16 by having him 
identify himself via a PIN code. 

Further, said franking mark 28 can comprise 
information related to the terminal 2 and the franking 
machine 20, as well as the type of postal delivery 
(regular, express delivery, registered, per air mail, 
etc. ) . 

The franking value can also be printed on the postal 
article 22 in human-readable form 31. 

On said postal article 22, space is allocated for the 
address 30 of the addressee. 

The system shown in Fig. 1 contains a device 32 to 
read in said postal articles 22 during dispatch from the 
sender to the addressee. If the unique bit string directly 
represents a franking value, the franking value, for 
example, can be checked. The data read in by said device 32 
can be supplied to the exchange 34. The information which 
is read in by said device 32 can be supplied to said 
exchange 34 in any prior art manner. 

For inputting the information to a processor 36 
present in said exchange 34, said exchange 34 is provided 
with suitable input means 44 which are connected to said 
processor 36. 

For implementing the method according to the 
invention, said exchange 34 is preferably provided with 
three memories 38, 40, 42. Of course these are not required 
to be physically separate memories. They can refer to 
different fields within one larger memory. 

Fig. 2a shows a possible embodiment of the functioning 
of the terminal 2 during operation. 

A customer arrives at said terminal 2 and inserts his 
bank card 16 (this shall hereinafter be used to refer to 
both a bank/ATM card or any (multi-functional) chip card) 
in the corresponding input/output means 12. The processor 4 
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requests, via the monitor 8, which type of electronic 
postage stamps the customer wants to have. The customer 
can, for example, indicate that he wishes to purchase a 
franking card 18 (this term shall be used hereinafter for 
5 every possible type of information carrier 18) with 100 

electronic postage stamps of 80 cents. This takes place in 
step 202. 

Said processor 4 reads the number of the bank card 16 
and asks the user to identify himself with his PIN code, 

10 steps 204 and 206. 

In step 208, said processor 4 checks, in a manner 
known per se, whether the customer has identified himself 
correctly. If not, an error message follows in step 210. 
After the error message in step 210, said processor 4 can 

15 return to the beginning of the flowchart drawn in Fig. 2a. 
Alternatively, a user can, as known per se, be given three 
opportunities to enter the correct PIN code. 

If a user has identified himself in the correct 
manner, the program in said processor 4 jumps to step 212 

20 and reads a franking number. In accordance with the 

invention, the franking number consists of a bit string 
which is unique and is selected from a set of unique bit 
strings . 

The set of unique bit strings is stored in said memory 
25 38 in said exchange 34. Said exchange 34 is connected with 
several terminals 2 distributed across the country and can, 
for example via the PSTN 4 6, make one or more unique 
franking numbers available from the set of unique franking 
numbers for said terminals 2. In that event, a certain 
30 amount of desired unique franking numbers can be 

transferred per transaction from the memory 38 in the 
exchange 34 to the memory 6 in the terminal 2. 
Alternatively, however, each of the terminals 2 can have 
stored a certain supply of unique franking numbers in said 
35 memory 6 beforehand, so that it is not required to 
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establish a connection between the terminal 2 and the 
exchange 34 each time a transaction with a customer takes 
place. Transmission of the unique bit strings can be 
protected in any prior art manner. 
5 The set of unique franking numbers in the memory 38 of 

the exchange 34 consists, for example, of bit strings of 
128 bits. This set thus contains such a large number of 
unique franking numbers that the need for such numbers will 
be covered for years. 

10 Preferably prior to step 212, the customer pays the 

franking card 18 in an electronic manner. This is done with 
the aid of the bank card 16 in a manner known per se. That 
is to say that, if said bank card 16 is a regular bank 
card, payment takes place by debiting the customer's bank 

15 balance. The manner in which this is done is known to those 
skilled in the art and does not require further explanation 
here. In the case that said bank card 16 comprises an 
electronic purse, the amount owed can be debited directly 
from the balance of said bank card 16. Payment can also 

20 take place in cash. 

The processor 4 then provides, via the input /output 
means 14, a separate franking card 18 in which both the 
identification code and the related franking numbers are 
stored. In one embodiment, said identification code and 

25 said franking numbers are stored with a message 

authentication code MACl, which is calculated by the SAM 3 
of the terminal 2 together with the processor of the bank 
card 16. As known, a MAC is a checksum of supplied text by 
means of which it can be checked whether the supplied text 

30 is valid. Each modification in the text (in this case the 
identification code and the franking numbers) can be 
detected. A MAC can only be cross-checked with a secret 
key, which is known only to said SAM 3 and the appropriate 
postal authorities. The generation of MACl and the storage 

35 of the required data on the franking card 18 takes place in 
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Steps 214 and 216- If several franking numbers are made 
available for use, the calculation of as many MACls may 
cost too much time. Therefore, as desired, the calculation 
of MACl may be limited to a calculation over the 
5 identification code and/or other known data such as date of 
issue, value etc. 

As an alternative for the calculation of a MAC, the 
data can also be stored in encoded form. 

For further protection of the whole, the processor 4 

10 preferably sends a copy of the identification code with the 
issued franking numbers, protected by MACl and/or protected 
by encoding, to the exchange 34, which stores this 
information in memory 40 so that at a later stage possible 
fraude can be checked centrally, step 218. This will be 

15 further discussed later. 

If desired, a terminal code, which uniquely identifies 
the terminal 2 which issued the franking card 18, can be 
stored in the memory of the franking card 18. If desired, 
said terminal code can form part of the calculation which 

20 the MACl has supplied. The terminal code, namely, can then 
not be changed unnoticed either. 

Fig. 3a shows a flowchart of the functioning of 
franking machine 20 in accordance with the method as 
explained with reference to Fig. 2a. 

25 A user inserts his franking card 18 in the 

input/output means 21 of the franking machine 20 intended 
for this purpose- By doing so, contact is established 
between the franking card 18 and the processor 23 of the 
franking machine 20. Via suitable input means (for example 

30 a keyboard, not shown) , the user issues a command to said 
processor 23 to print an electronic postage stamp on postal 
article 22. As soon as said processor 23 has established 
that such an instruction has been received, step 302, said 
processor 23 reads either MACl with the related 

35 identification code and franking number, or the 
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identification code and the franking number in encoded form 
of said franking card 18. If present, the terminal code, 
which is stored in said franking card 18, will also be 
read. 

5 On the basis of the read-in data, the franking machine 

20 compiles, in a predetermined manner, a franking mark and 
prints this on the postal article 22, step 306. To this 
end, said franking machine 20, in a manner known per se, is 
provided with an opening in which the postal article 22 can 

10 be inserted, so that the franking mark can be printed on 
the postal article 22 with the aid of the printer 27. 

The situation can be such, for example, that said 
processor 23 is able to check whether the franking value is 
sufficient in view of the weight of said postal article 22. 

15 To this end, said postal article 22 is weighed by the 

weighing means 25, which send a weighing signal to said 
processor 23. The franking number can, for example, belong 
to a certain sub-group of all unique franking numbers which 
are only allowed to be used for postal articles up to and 

20 including 50 grams. A separate sub-group of unique franking 
numbers is then available per weight class and per type of 
postal delivery. Said processor 23 can thus check directly 
whether the franking value is correct, and, if this is not 
the case, warn the user via a display (not shown) . 

25 The franking mark, for example, is printed in the form 

of a two-dimensional bar code 28 on the postal article 22. 
Preferably the franking mark comprises at least the 
following data: the related franking number, the 
identification code of the user, the terminal code of the 

30 terminal 2, and a franking machine code which identifies 
the franking machine 20. Preferably said data, provided 
with a further MAC (MAC2) , are printed in the franking 
mark. Such a MAC 2 is calculated by SAM 19 in the franking 
machine 20 together with the franking card 18, which 

35 thereto must be provided with a processor (not shown) . 
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Alternatively, the data can also be printed in encoded 
form, in which case the encoding takes place with the aid 
of known cryptographic techniques (possibly including the 
placing of a digital signature) . If desired, SAM 19 may 
5 keep track of a counter which, from a certain moment in 

time to, reflects the total amount spent on franking in the 
franking machine 20 up to the moment concerned. The content 
of this counter then also is part of the franking mark. 
Optionally, the franking mark 28 can also comprise: 

10 address information of addressee and sender (possibly 

return address), service information such as "registered", 
"express delivery", etc., and date and time. This 
information can then be provided with a MAC and/or be 
encoded with the above-mentioned data with the aid of known 

15 cryptographic techniques. 

After the franking machine 20 has printed the franking 
mark on the postal article 22, said franking machine 20 can 
render each following use of the used franking number on 
the franking card 18 impossible. This takes place in step 

20 308. This may be done, for example, by deleting the related 
franking number on said franking card 18. 

Upon dispatch of the postal article 22 from a sender 
to a receiver, said postal article 22 will, at a given 
time, arrive in a sorting centre. There said postal article 

25 22 will be read in with the aid of the means 32, and it 
can be checked again whether said postal article 22 has 
been sufficiently franked. The means 32 read at least the 
franking mark 28. The means 32 thus collect all read-in 
franking marks 28 of all postal articles which are provided 

30 therewith. All franking marks 28 are subsequently sent to 
the exchange 34 and are there read in by the processor 36 
via the input means 44. Said processor 36 stores the 
inputted franking marks in the memory 42. 

At an earlier stage, said processor 36 had already 

35 received data from the terminals 2 related either to 
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franking numbers issued with related identification codes 
and MACl's, or to encoded franking numbers with related 
identification codes. Said data were stored in the memory 
40 by the processor 36. Thus said processor 36 is able to 

5 compare the data received via the input means 44, after 
storage in the memory 42, with the data stored in said 
memory 40. Thus it can be checked whether the franking 
numbers present in said memory 42 were indeed issued. If 
the franking number, the identification code, the terminal 

10 code and/or the franking machine code have been tampered 

with in any way, said processor 36 can derive this directly 
from the MACl and MAC2 or encoded data included in the 
franking mark. Said processor 36 can then further derive 
for which terminal 2 and/or which user irregularities have 

15 occurred. The identification code, after all, uniquely 
identifies the user and/or the SAM 3 in the terminal 2. 

A further check takes place by processor 36 
maintaining which unique franking numbers were sent to the 
terminals 2, for example by storing said franking numbers 

20 in the memory 40. Of course said franking numbers can also 
be stored in another memory. In the first place, said 
franking numbers which were already sent to the terminals 2 
can then not be sent again. In the second place, the data 
sent to the exchange 34 by the terminals 2 can then, in a 

25 first round, already be compared to the issued franking 
numbers, so that it can be checked directly whether the 
franking numbers issued by the terminals 2 were indeed 
franking numbers which were sent from the memory 38. 

If the franking mark 28 possesses an identification 

30 code which uniquely identifies the owner of the bank card 
16, it is possible to implement the invention with later 
payment. After all, from the received franking marks 28 the 
processor 36 can then unequivocally derive which customers 
have used which franking numbers. This opens the 

35 possibility that the means 32, for example, measure the 
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weight of the postal article 22 and inform said processor 
36 of the weight together with the franking mark 28. In 
that case, said processor 36 establishes at that time how 
much the customer must pay for sending the related postal 
5 article, one and the other being dependent upon, for 

example, the weight of the postal article 22 and the type 
of dispatch- The balance of the customer at the bank is 
then debited for the related amount in a manner known per 
se. Instead of this, of course, an invoice can be sent or 

10 the balance can be debited at another bank, with which, in 
a manner known per se, a communication link is established. 
The advantage of this alternative methode is that the 
issuance of franking numbers is not yet coupled to the 
value which is required in view of the weight and the type 

15 of dispatch of said postal article 22, The unique franking 
number is then only an identification of the postal article 
22. The franking number does then not need to comprise 
information related to the franking value. 

In theory, therefore, two types of cards are possible: 

20 loadable cards (for example chip cards) and non-loadable 

cards (for example magnetic strip cards) . In theory, three 
different ways of payment are further possible in both 
cases: prepayment of each electronic postage stamp 
entirely, post-payment of each electronic postage stamp, 

25 and a combination of pre-paid and post-paid electronic 
postage stamps. 

Figs. 2b and 3b show flowcharts for an alternative 
embodiment of the method according to the invention. Said 
alternative method is related to an embodiment in which a 

30 unique franking number is not applied per postal article. 
In some cases, a customer could wish to frank 1000 or more 
postal articles, for example. With the means available at 
this time for storing data on credit cards and/or cards 
provided with magnetic strips, it is impossible to store 

35 such large amounts of unique franking numbers, consisting. 
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for example, of 128 bits. This probleem can be circumvented 
by providing a franking number with a certain counter 
value . 

The method for providing an electronic stamp with 
5 counter is explained on the basis of Fig. 2b. Step 252 cor- 
responds to step 202 in Fig. 2a. 

Step 254 shows in an abbreviated way that a user must 
identify himself, for example in the manner as explained on 
the basis of steps 204-210 in Fig. 2a. 
10 Step 256 corresponds with step 212 in Fig. 2a. 

After the processor 4 has read the franking number, 
said processor 4, in step 258, reads a counter value. Said 
processor 4 can do this, for example, by asking the user 
via the monitor 8 to supply such a counter value. The 
15 magnitude of the counter value then determines the number 
of times that the related franking number may be used. 
Alternatively, the counter can represent a monetary value 
which can be expended on electronic postage stamps. The 
user can enter the counter value via the keys of the 
20 keyboard 10. 

In step 260, said processor 4 generates MACl on the 
basis of the identification code of the user, the franking 
number issued and the counter value. Alternatively, said 
data can be stored in encoded form. The counter value, 
25 therefore, is then securely stored and can not be changed 
unnoticed. 

In step 262, said processor 4 stores either MACl with 
the identification code, the franking number issued and the 
counter value, or the encoded data, on the franking card 
30 18 . 

Again, said franking card 18 can have any embodiment 
such as explained above with reference to Fig, 2a. 

In step 264, the processor 4 sends a copy of MACl with 
identification code, franking number and counter value, or 
35 the encoded form of said data, to the exchange 34. The 
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exchange 34 again stores the data in the memory 40 and thus 
knows how often the related franking number may be used. 

Fig. 3b shows a flowchart of the functioning of 
franking machine 20 for the embodiment in which use is made 
5 of a counter. 

In step 352, the franking machine 20 waits until the 
customer has submitted a request for printing an electronic 
postage stamp. Said step corresponds to step 302 in Fig. 
3a . 

10 As soon as the customer has submitted this request, 

the franking machine reads either MACl with identification 
code, franking number and counter value, or said data in 
encoded form, from the franking card 18. This takes place 
in step 354. 

15 In step 356, the processor 23 checks whether the read- 

in counter value is still greater than zero. If this is not 
the case, the related franking number is not allowed to be 
used further and an error message follows in step 358. 
After step 358, the program returns to step 352. 

20 If the counter value is greater than zero, the program 

of the processor 23 proceeds with step 350. In step 350, 
said processor 23 controls the printer 27 in such a manner 
that the franking mark calculated by said processor 23 is 
printed on the postal article 22. Said franking mark is 

25 again preferably provided with MAC2 . Alternatively, all 
data are printed in encoded form in the franking mark. 

Thereafter, in step 362, the processor 23 decrements 
the counter value on the franking card 18 in order to 
indicate that the related unique franking number may be 

30 used once less, or to decrement the available value. 

Of course the calculation of MACl also takes the 
modified counter value into account. 

The actual counter value then forms part of the 
franking mark 28 on the postal article 22. 
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It is remarked that the combination of unique franking 
number and actual counter value then still entails a unique 
bit string. This latter bit string, however, then has more 
bits than the number of bits of the unique franking number. 
5 The actual counter value is then jointly read by the 

means 32, and subsequently also stored in the exchange 34, 
via the input means 44 with the aid of the processor 36, in 
the memory 42. Said processor 36 then has the possibility 
of checking whether each combination of franking number and 

10 counter value is indeed used only once. Since the related 
information is protected by iyiAC2 or is securely stored by 
encoding, illicit modification of these numbers can be 
detected by processor 36. 

Said processor 36 can also check whether the customer 

15 has used the franking number for the permitted number of 
times . 

It will be clear that the embodiment according to 
Figs. 2b and 3b, just as the embodiment according to Figs, 
2a and 3a, can be used with pre- and post-payment. 

20 Optionally it is possible, in the embodiment according 

to Fig. 1, where use is made of the franking card 18, to 
restrict the use of the franking card 18 to a number of 
pre-selected franking machines 20. To this end, the 
franking cards 18 can be provided with those franking 

25 machine codes, related to said franking machines 20, on 
which the use of said franking card 18 is permitted. 

A further option is to implement the system shown in 
Fig. 1 in such a manner that each of the franking cards 18 
is also allocated a unique number. Possible fraude with 

30 franking cards 18 can then be pin-pointed. Information 
related to said fraudulently used franking cards 18 can 
then be included on an arbitrary franking card 18. 
Subsequently, said information, related to the fraudulently 
used franking cards 18, can then be transferred 

35 "unperceived" to the franking machines 20, which store the 
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related information in a memory (not shown) . If a customer 
with fraudulently used franking card 18 wishes to print an 
electronic postage stamp, the franking machine 20 can 
detect the related franking card 18 and render it invalid. 
5 This can be done either by deleting the contents of the 

franking card 18 or making them non-readable, or by simply 
refusing to print an electronic postage stamp. Thereby 
further damages by possible fraude can be decreased. 

As an alternative for the use of a counter, a franking 
10 number, which for example can be used by the customer for a 
predetermined number of days, can also be used. This is 
only possible in the embodiment with which post-payment 
takes place. In that case, the franking number is still 
unique, but the franking number is used for more than one 
15 postal article 22. Since in that case a franking card 18 
with a certain unique franking number can be used for a 
non-predefined number of times, it is preferable in such an 
embodiment to apply a PIN code which the user of the 
franking card 18 requires in order to use said franking 
20 card 18 on the franking machine 20. In that case, said 

franking machine 20 must be arranged such that it can check 
the PIN code associated with said franking card 18. 

Fig. 5 shows an alternative embodiment of the 
invention in which use is made of a PC of a user instead of 
25 a terminal 2 such as shown in Fig. 1. 

Parts which are identical in Figs. 1 and 5 have the 
same reference numbers. 

In Fig. 5, reference number 52 designates the 
microprocessor of the PC 50 of a user. The microprocessor 
30 52 is connected to a monitor 54, a printer 62, a keyboard 
58 and, if desired, a mouse 60. In one embodiment, the 
microprocessor is also connected to input/output means 14, 
which can accept, a bank card 18 (multi-functional 
chipcard) . For calculating MAC'S or for determining the 
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codes of the data to be printed, the microprocessor 52 can 

be coupled to a SAM 64 . 

The microprocessor 52 is connected, for example via 

the PSTN, to a server system 70 to which several 
5 computersystems can be connected. Several server systems 

can be provided, each with their own connections to PCs. 

Said server system 70 is connected to the exchange 34. Said 

server system 70 comprises a server processor 72, to which 

a SAM or HSM (= Host Security Module = a computer system 
0 with the same functionality as a SAM, but with much larger 

capacity) 74 is connected. 

The communication between said PC 50 and the server 

system 70 can, for example, take place with an Internet 

protocol (IP) • 

5 Fig. 4a shows een flowchart of an embodiment of the 

functioning of the PC 50 in the context of the present 
invention for reloading a bank card 18 with a certain 
desired amount to be spent on electronic stamps. Fig. 4b 
relates to the actual printing of such an electronic stamp 

0 with such a bank card 18. 

In step 402, the microprocessor 52 waits until a user 
submits a request for providing an amount for one or more 
electronic postage stamps. For executing such a request,, 
the user makes use of the known input means, such as 

5 keyboard 58 and/or mouse 60. In this regard, the user first 
inserts his bank card 18 in the input/output unit 14. 

The microprocessor 52, via the monitor 54, thereafter 
asks the user to identify himself in a unique manner, step 
404. This can be done, for example, by the user inserting 

0 his bank card 18 in the input /output means 14, so that the 
microprocessor 52 can read the number of said bank card 18. 
Subsequently the user shall have to identify himself, for 
example with the aid of a PIN code, in order to make clear 
that he is the legitimate user of said bank card 18. The 

.5 checking of the PIN code preferably takes place,' as known 
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in the prior art, on the bank card 18 itself. Said micro- 
processor 52 can subsequently assume that the user has been 
identified in a unique manner with the aid of the bank card 
number, for example. This takes place in step 404. 
5 Alternatively, the microprocessor 52 can ask the user to 
enter the combination of bank card number and PIN, or 
another unique combination, via keyboard 58, after which 
this data is checked locally by the PC 50. In that case, 
said PC 50 must have this combination of data securely 
10 stored. 

In step 406, the microprocessor requests a unique 
franking number at the exchange 34. This occurs in a same 
way as explained above with reference to the Figs. 2a and 
2b. 

15 Subsequently the SAM 74 of the server system 70, 

together with the bank card 18, generates a MAC, MACl on 
the basis of the identification code of the user, the 
related franking number and the balance that was made 
available for electronic stamps. Alternatively, said server 

20 system 70 calculates enciphered data for the identification 
code, the franking number and said balance. This takes 
place in step 408. 

In step 410, the microprocessor stores, at choice, 
MACl, the identification code, the franking number and said 

25 balance on the bank card 18. If an encoding step has taken 
place instead of a MAC calculation, the enciphered data of 
the identification code, the franking number and the said 
balance are stored on the bank card. 

In step 412, the server system 70 sends a copy of 

30 either MACl, the identification code, the franking number 
and the balance, or the enciphered data of the 
identification code, the franking number and the balance, 
to the exchange 34. Said exchange 34 will again store said 
data in its memory 40. 
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After step 412, the storage of a balance on the bank 
card 18 that .can be used for electronic stamps is 
completed . 

Fig. 4b shows how a user, with his bank card 18 which 
has thus been provided with a balance, can instruct the PC 
50 to print a franking mark on a postal article. 

After the related program is started, step 450, said 
PC 50 waits until the user has submitted a request for 
printing a franking mark, step 452. 

Via step 454,' said PC 50 experiences how high the 
postage costs must be that are to be processed in the 
franking mark. The user can enter the postage costs, for 
example, via the keyboard 58. It is imaginable that this 
step is automated with the aid of an automatic weighing 
device (not shown) , connected to said PC 50, which weighs 
the postal article, after which the postage costs are 
automatically determined and passed on to said PC 50. 

The user has brought his bank card 18 into contact 
again with the input/output means 14 and has identified 
himself again with the aid of his PIN code. The 
microprocessor 52 reads MACl, the identification code, the 
franking number and the actual balance of the bank card 18, 
step 456, 

The microprocessor 52 subsequently checks, step 458, 
whether the actual balance is sufficient for the desired 
postage costs. If not, a message to the user then follows 
in step 460, entailing, for example, that the user must 
restore his balance on the bank card. 

In step 462, the microprocessor 52 instructs the 
printer 62 to print a franking mark, calculated by the SAM 
64, on the postal article 22 after the user has inserted 
the postal article 22 in the printer 62. In that regard, 
SAM 64, together with the bank card 18, calculates MAC2 
on the basis of all data which are included in the franking 
mark, among which: the identification code, the unique 
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franking number, the actual balance and the postage costs. 
As an alternative for calculating a second MAC, MAC2, said 
data can be encoded. The data preferably also contains a 
PC-code which uniquely identifies said PC 50. 
5 After step 462, the actual balance is decremented in 

step 464 by subtracting the postage costs therefrom. The 
new actual balance then represents the amount that is still 
available for further electronic stamps. 

It is remarked that in the embodiment which is 

10 described on the basis of Figs. 4a, 4b and 5, a unique 

franking number is used just until the original balance is 
expended. However, since the actual balance and the actual 
postage costs are also included in each franking mark, 
there is still a unique bit string per postal article. 

15 After step 464, the program returns to step 450. 

The payment by the customer preferably takes place at 
the moment the customer restores the balance on his bank 
card. This can takes place electronically in a manner known 
per se. In that regard, the debiting can again take place, 

20 via the exchange 34, from a central bank balance, or 
directly from the bank card 18 if this comprises an 
electronic purse. 

It is also imaginable, however, to let payment be made 
later, as explained above with reference to the embodiment 

25 of Fig. 1. In that regard, the balance loaded in the bank 
card 18 does not represent a total amount which can be 
expended on electronic stamps, but the number of times that 
the franking number provided can be used. The advantage of 
post-payment is that the user does not need to weigh his 

30 postal article 22 in advance in order to have the correct 
franking value included in the franking mark 28. After all, 
the franking mark here too uniquely identifies the user, 
who can subsequently have the invoice sent to him or whose 
bank balance can be automatically debited. Moreover, the 

35 presence of the unique franking number with identification 
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code and the actual "balance" guarantees that each postal 
article 22 is uniquely identified, so that fraude can be 
detected immediately . 

It is further remarked that, instead of or together 
5 with an identification of the user, it is possible to 
include an identification of the SAM 64 in the franking 
mark. In that case, the owner of the PC 50 with SAM 64 is 
responsible for the correct payment of the electronic 
postage stamps and for possible fraude carried out with the 

10 PC 50. It is then up to said owner to subject access to the 
program for purchasing an electronic postage stamp to 
authorisation rules . 

In a further embodiment with the aid of a PC 50, a 
standard PC without SAM 64 can be used. In this case, said 

15 PC 50 cannot safely calculate MAC^s. The franking mark is 
then produced either centrally in the exchange 34 or in 
server system 70, and sent to said PC 50. Said PC 50 then 
combines the received franking mark with possible other 
information and prints this on the postal article 22 with 

20 the aid of printer 62. In that case, instead of working 

with the storage of a balance for electronic stamps on bank 
card 18, one franking mark per time is retrieved from the 
exchange 34. In this case, payments of electronic postage 
stamps preferably take place directly either by debiting a 

25 user's bank balance, or from bank card 18 with an 

electronic purse. To contend with possible fraude, the user 
must uniquely identify himself, for example with his 
giro/bank number and an associated PIN. Preferably, 
identification then still takes place with bank card 18 and 

30 by checking a PIN code. 

Furthermore, it will be clear to the expert that, 
although all processors and SAMs described up to here have 
been shown as single blocks, they may be implemented in 
practice in any other known way, i.e., as , for example, 

35 several cooperating subprocessors which, at choice, are 
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placed at some distance from each other and provide the 
desired functionality. They are preferably controlled by 
software but, where necessary, they may comprise analogue 
and digital circuits. 
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Claims 

1. A method for printing a franking mark (28) on a 
document (22), comprising the following steps: 

a. making available a unique bit strings- 
fa . establishing an identification code; 
c. securely printing the franking mark (28) on the 

document (22), said franking mark at least comprising 
information relating to the bit string and the 
identification code; 
characterised in that the bit string is selected from a 
centrally stored set of unique bit strings and that the 
unique bit strings which are made available for use are 
centrally registered . 

2. A method according to Claim 1, characterised in that, 
prior to step c, the unique bit string and the 
identification code, protected with the aid of a first 
message authentication code and/or protected by encoding, 
are stored by a terminal (2) on an information carrier (18) 
with memory, and step c takes place after the reading of 
the information carrier by a printing device (20) . 

3. A method according to Claim 2, characterised in that, 
besides the unique bit string and the identification code, 
a terminal identification code, protected with the aid of 
the first message authentication code and/or by the 
encoding, is also stored on the information carrier (18) 
with memory by the terminal (2) . 

4. A method according to Claims 2 or 3, characterised in 
that after the reading of the information carrier (18) by 
the printing device (20), use of the unique bit string for 
printing a further franking mark on a further document is 
rendered impossible by the printing device (20) . 
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5. A method according to Claim 2 or 3, characterised in 
that, after reading the information carrier (18), it is 
checked whether the value of a counter on the information 
carrier (18) lies within predefined limits, and, if this is 
the case, the value of the counter is adjusted after 
reading and step c is executed, and, if this is not the 
case, step c is blocked. 

6. A method according to Claim 1, characterised in that, 
upon execution of step c, use is made of a computer (50) 
and a printing device connected thereto (62). 

7. A method according to any of the preceding claims, 
characterised in that the identification code comprises a 
user identification code and/or a printer identification 
code . 

8. A method according to any of the preceding claims, 
characterised in that on the basis of the franking mark a 
second message authentication code is calculated and that 
this also is printed and/or the franking mark is printed in 
encoded form. 

9. A method according to any of the preceding claims, 
characterised in that the set of unique bit strings is 
stored in a first central memory (38), used combinations of 
identification codes and unique bit strings are stored in a 
second central memory (40), franking marks printed on 
documents are read in, combinations of identification codes 
and unique bit strings which are present in the read-in 
franking marks are stored in a third central memory (42) 
and are compared to the used combinations in the second 
central memory. 
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10. A system for printing a franking mark (28) on a 
document (22), comprising: 

a. means (34) for making available a unique bit strings- 
fa, means (4; 52) for establishing an identification code; 
5 c. means (20; 62) for securely printing the franking mark 
(28) on said document (22), said franking mark at 
least comprising information relating to the bit 
string and the identification code; 
characterised in that the means (34) for making available 
10 the unique bit string comprise a first centrally arranged 
memory (38) with a set of unique bit strings, from which 
the unique bit string is selected, and that means are 
provided for centrally registering which unique bit strings 
have been made available for use. 

15 

11. A system for printing a franking mark (28) according 
to Claim 10, characterised in that said system comprises a 
terminal (2) and a printing device (20), said terminal (2) 
being arranged to store, prior to step c, the unique bit 

20 string together with the identification code, protected 

with the aid of a first message authentication code and/or 
protected by encoding, on an information carrier (18) with 
memory, and the printing device (20) is arranged to execute 
step c after reading the information carrier. 

25 

12. A system according to Claim 11, characterised in that 
the terminal is arranged to send a copy of either the 
unique bit string together with the identification code and 
the first message authentication code, or the unique bit 

30 string and the identification code in encoded form, to an 
exchange (34 ) . 

13. A system according to Claim 11 or 12, characterised in 
that the terminal (2) is arranged to store also, besides 

35 the unique bit string and the identification code, a 
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terminal identification code, protected with the aid of the 
first message authentication code and/or protected by 
encoding, on the information carrier (18) with memory. 

6 14, A system according to Claim 11, 12 or 13, 

characterised in that the printing device (20) is arranged, 
after reading the information carrier (18), to render use 
of the unique bit string for printing a further franking 
mark on a further document impossible. 

10 

15. A system according to Claim 11, 12 or 13, 
characterised in that the printing device (20) is arranged, 
after reading the information carrier (18), to check 
whether the value of a counter on the information carrier 
15 (18) lies within predefined limits, and, if this is the 
case, to execute step c and to adjust the value of the 
counter after reading, and, if this is not the case, to 
block step c, 

20 16. A system according to Claim 10, characterised in that 
it comprises a computer (50) and a printing device (62) 
connected thereto for executing step c. 

17. A system according to Claim 16, characterised in that 
25 the system is provided with means (70) arranged remotely 

from the computer (50) to send the unique bit string, 
together with the identification code, protected with a 
first message authentication code and/or protected by 
encoding, to said computer (50) and to send a copy of said 
30 data to an exchange (34). 

18. A system according to Claim 16, characterised in that 
the computer is provided with means (64) to print, with the 
aid of the printing device (62), the unique bit string 

35 together with the identification code, protected with a 



wo 00/3 1 693 PCT/EP99/09 1 70 

34 

first message authentication code and/or protected by 
encoding, on .the document, and optionally to send a copy of 
said data to an exchange (34). 

5 19. A system according to any of the Claims 10 up to and 

including 18, characterised in that the identification code 
comprises a user identification code and/or printer 
identification code . 

10 20, A system according to any of the Claims 10 up to and 

including 19, characterised in that the system is arranged 
to calculate and print, on the basis of the franking mark, 
a second message authentication code and/or to print the 
franking mark in encoded form. 

15 

21, A system according to one of the Claims 10 up to and 
including 20, characterised in that the system further 
comprises a second central memory (40) for storing 
combinations of identification codes and provided unique 

20 bit strings, central input means (44) for inputting 

franking marks printed on documents, a third central memory 
(42) for storing the combinations of identification codes 
and unique bit strings present in the inputted franking 
marks, and processor means (36), connected to the central 

25 input means and the first, second, and third central 

memories, for mutually comparing the data in the second and 
third central memories. 

22, An exchange (34) provided with a first central memory 
30 (38), with a set of unique bit strings, a second central 

memory (40) for storing combinations of identification 
codes and provided unique bit strings, said combinations 
corresponding with franking marks (28) which are printed on 
a document (22), central input means (44) for inputting 
35 franking marks printed on documents, and a third central 
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memory (42) voor storing combinations of identification 
codes and unique bit strings present in the inputted 
franking marks, and processor means (36), connected to the 
central input means and the first, second, third central 
5 memories, for mutually comparing data in the second and 
third central memories . 

23. Means for. a device (20; 50) that is arranged for 
printing a franking mark on a document (22), said means at 

10 least being arranged for receiving data from an information 
carrier (18), said data at least comprising a unique bit 
string originating from a set of unique bit strings, for 
compiling and making data available for the franking mark 
(28) for the document (22) in protected form, so that said 

15 device (20; 50) can print the franking mark (28) on the 

document securely, said franking mark at least comprising 
the said data as well as an identification code. 

24. Means according to Claim 23, characterised in that 
20 they are arranged to check, after reception of the data 

from the information carrier (18), whether the value of a 
counter on the information carrier (18) lies within 
predefined limits, and, if this is the case, to instruct 
the information carrier (18) to adjust the value of the 
25 counter, and, if this is not the case, to block the 
printing of the franking mark. 

25. An information carrier (18), provided with a memory 
which at least contains the following data: a unique bit 

30 string, selected from a set of unique bit strings, an 

identification code and a message authentication code which 
is calculated on the basis of at least the unique bit 
string and the identification code and/or the unique bit 
string and the identification code in encoded form. 



35 
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26. A computer-readable information carrier, provided with 
software, which, after being read, enables the computer to 
execute a method for printing a franking mark (28) on a 
document (22), comprising the following steps: 
5 a. the reception of a unique bit strings- 
fa, establishing an identification code; 
c. securely printing the franking mark (28) on the 

document (22), said franking mark at least comprising 
information relating to the bit string and the 
10 identification code; 

where the bit string is received from a centrally stored 
set of unique bit strings. 



27. A data carrier wave provided with software for 
downloading to a computer, which, after being read, enables 
the computer to execute a method for printing a franking 
mark (28) on a document (22), comprising the following 
steps : 

a. the reception of a unique bit string; 

b. establishing an identification code; 

c. securely printing the franking mark (28) on the 
document (22), said franking mark at least comprising 
information relating to the bit string and the 
identification code; 

where the bit string is received from a centrally stored 
set of unique bit strings. 
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